diff options
| author | Toni Uhlig <matzeton@googlemail.com> | 2024-10-25 12:20:55 +0200 |
|---|---|---|
| committer | Toni Uhlig <matzeton@googlemail.com> | 2024-10-25 12:20:55 +0200 |
| commit | 3220293f152a6e62c91817c811cda628a038c47a (patch) | |
| tree | 8315181b29d0956e5c2c50e8811029af3945688d | |
| parent | 92810df1539fc696f74940939031bdacd932df98 (diff) | |
Changed protocol GUID, backdoor variable name and cookie valuemy
* fixed EfiDSEFix Mingw Makefile
* removed `EFIAPI` from `BmSetMemoryTypeInformationVariable`
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
| -rw-r--r-- | Application/EfiDSEFix/Makefile.mingw | 2 | ||||
| -rw-r--r-- | Application/Loader/Loader.c | 1 | ||||
| -rw-r--r-- | EfiGuardPkg.dec | 2 | ||||
| -rw-r--r-- | Include/Protocol/EfiGuard.h | 6 |
4 files changed, 5 insertions, 6 deletions
diff --git a/Application/EfiDSEFix/Makefile.mingw b/Application/EfiDSEFix/Makefile.mingw index ae6f8d3..cc3b0a4 100644 --- a/Application/EfiDSEFix/Makefile.mingw +++ b/Application/EfiDSEFix/Makefile.mingw @@ -1,6 +1,6 @@ CC = x86_64-w64-mingw32-gcc CXX = x86_64-w64-mingw32-g++ -CFLAGS = -m64 -fPIC -mconsole -municode +CFLAGS = -m64 -fPIC -municode TARGETS := src/main.o src/pe.o src/sysinfo.o src/EfiDSEFix.o src/hde/hde64.o IMPLIBS := -lntdll diff --git a/Application/Loader/Loader.c b/Application/Loader/Loader.c index 665b2fe..589bbea 100644 --- a/Application/Loader/Loader.c +++ b/Application/Loader/Loader.c @@ -38,7 +38,6 @@ STATIC CHAR16* mDriverPaths[] = { VOID -EFIAPI BmSetMemoryTypeInformationVariable( IN BOOLEAN Boot ); diff --git a/EfiGuardPkg.dec b/EfiGuardPkg.dec index 4d8c783..be8e6cc 100644 --- a/EfiGuardPkg.dec +++ b/EfiGuardPkg.dec @@ -15,4 +15,4 @@ [Protocols] ## Include/Protocol/EfiGuard.h - gEfiGuardDriverProtocolGuid = { 0x51e4785b, 0xb1e4, 0x4fda, { 0xaf, 0x5f, 0x94, 0x2e, 0xc0, 0x15, 0xf1, 0x7 }} + gEfiGuardDriverProtocolGuid = { 0xa2b65550, 0x8675, 0x48ac, { 0xbd, 0xe6, 0x02, 0xa5, 0x3b, 0xc2, 0x02, 0x3c }} diff --git a/Include/Protocol/EfiGuard.h b/Include/Protocol/EfiGuard.h index d3f386e..1c33210 100644 --- a/Include/Protocol/EfiGuard.h +++ b/Include/Protocol/EfiGuard.h @@ -12,7 +12,7 @@ extern "C" { // #define EFI_EFIGUARD_DRIVER_PROTOCOL_GUID \ { \ - 0x51e4785b, 0xb1e4, 0x4fda, { 0xaf, 0x5f, 0x94, 0x2e, 0xc0, 0x15, 0xf1, 0x7 } \ + 0xa2b65550, 0x8675, 0x48ac, { 0xbd, 0xe6, 0x02, 0xa5, 0x3b, 0xc2, 0x02, 0x3c } \ } // @@ -58,12 +58,12 @@ typedef enum _EFIGUARD_DSE_BYPASS_TYPE { // (1) one of the Byte through Qword fields (depending on size) will contain the value at KernelAddress, or // (2) the memcpy performed will be in the opposite direction, i.e. from KernelAddress to UserBuffer. // -#define EFIGUARD_BACKDOOR_VARIABLE_NAME L"roodkcaBdrauGifE" // "EfiGuardBackdoor" // TODO: randomize? +#define EFIGUARD_BACKDOOR_VARIABLE_NAME L"GLM" // "MLG" // TODO: randomize? #define EFIGUARD_BACKDOOR_VARIABLE_GUID &gEfiGlobalVariableGuid #define EFIGUARD_BACKDOOR_VARIABLE_ATTRIBUTES (EFI_VARIABLE_NON_VOLATILE | EFI_VARIABLE_BOOTSERVICE_ACCESS | EFI_VARIABLE_RUNTIME_ACCESS) #define EFIGUARD_BACKDOOR_VARIABLE_DATASIZE sizeof(EFIGUARD_BACKDOOR_DATA) -#define EFIGUARD_BACKDOOR_COOKIE_VALUE (0xDEADC0DE) +#define EFIGUARD_BACKDOOR_COOKIE_VALUE (0xBEEFBEEF) typedef struct _EFIGUARD_BACKDOOR_DATA { |